$ rpki-client -vvf repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134342e302f32342d3234203d3e20313430343831.roa File: 3131302e37362e3134342e302f32342d3234203d3e20313430343831.roa (raw, json) Hash identifier: KoEPh6lpEMSvfnV/vjmbsJ0wLOTaFFj1PpSDlGO5Ls8= Subject key identifier: 9A:E9:2F:86:A8:D7:2B:1A:87:53:7B:11:2B:D5:53:16:A4:02:52:98 Certificate issuer: /CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Certificate serial: 401A937AA03683102B235F7A990E7018D0802574 Authority key identifier: 0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134342e302f32342d3234203d3e20313430343831.roa Signing time: Sat 31 Aug 2024 16:11:57 +0000 ROA not before: Sat 31 Aug 2024 16:06:57 +0000 ROA not after: Sat 30 Aug 2025 16:11:57 +0000 asID: 140481 IP address blocks: 110.76.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:1a:93:7a:a0:36:83:10:2b:23:5f:7a:99:0e:70:18:d0:80:25:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Validity Not Before: Aug 31 16:06:57 2024 GMT Not After : Aug 30 16:11:57 2025 GMT Subject: CN=9AE92F86A8D72B1A87537B112BD55316A4025298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c1:ae:42:64:fe:6c:03:4d:a0:b3:56:02:d8: 20:9a:fd:ed:66:5a:58:6e:d1:e1:41:a6:80:40:d8: 64:5d:8b:b2:6b:e0:5f:a9:b9:35:03:f5:27:f7:5c: 58:1b:8f:f5:5a:01:76:a8:8f:af:84:43:9f:06:24: a1:a5:69:b3:fe:5c:0f:00:05:63:35:9d:70:f1:a2: 5b:33:15:9e:b3:23:90:bc:83:1c:38:44:41:e8:a1: a1:46:fa:01:27:ae:ba:9c:75:fe:3e:75:f8:ee:da: 1f:12:2d:02:fb:77:1a:a8:90:d8:87:03:7f:3e:16: c7:78:72:ef:1f:36:c3:ef:64:c7:8e:86:a0:21:1d: 56:d3:5f:3a:9f:74:69:f5:ca:9e:fb:ef:e8:9b:34: 3d:90:3e:a3:55:74:b2:4b:56:e5:49:8c:27:c4:1b: 88:7e:70:95:6b:f4:bc:6b:c0:a4:ee:5b:b9:3b:32: b9:f9:94:ff:76:34:a2:17:a4:1f:5c:b0:52:32:d4: c5:a1:8f:f9:02:50:9e:06:87:15:10:89:83:e4:47: 31:13:bd:64:42:1b:97:10:46:1b:98:fa:f0:b6:2e: 5d:9f:ec:f2:ad:5d:cc:dd:ee:15:aa:b2:f6:95:da: b3:a1:18:4b:6c:84:8f:dd:86:45:6e:93:5f:8b:75: 2e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:E9:2F:86:A8:D7:2B:1A:87:53:7B:11:2B:D5:53:16:A4:02:52:98 X509v3 Authority Key Identifier: keyid:0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134342e302f32342d3234203d3e20313430343831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.76.144.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:eb:89:ba:bb:8b:f2:80:4d:7e:03:f5:f5:53:00:ff:17:07: 35:60:47:dd:da:cf:b1:75:52:e8:7e:39:dd:1e:37:80:0b:bb: 17:69:fd:c4:c4:3c:88:d0:50:c3:ec:9f:fa:53:4c:fb:b2:5d: e0:61:fd:25:92:3d:81:83:17:7f:9a:38:9a:75:5e:6c:93:26: 98:4d:c7:d5:45:01:79:7d:0e:ea:5a:30:9e:e2:6e:14:7b:b3: b7:39:df:16:a5:7b:fd:62:15:c6:6d:d1:2c:c0:f2:27:c9:8b: b0:61:56:b1:56:8d:bb:8c:07:52:e2:ec:91:ef:d8:73:08:ad: df:15:be:ea:ec:30:ff:bd:cd:9f:7b:75:1e:0b:20:3e:59:40: 92:76:43:e8:4d:8c:bb:7b:bb:79:5b:a0:88:b4:6c:88:0a:0d: 89:b1:d8:2d:59:05:a2:4b:db:08:d9:e8:dd:21:a6:bd:85:f1: 59:8c:b4:cc:e6:5c:b3:df:9a:73:7c:45:04:f7:4a:51:1e:8a: 97:50:a1:53:9d:bf:54:29:fd:cc:fb:8e:ed:19:b6:cd:69:70: 1d:f5:a2:f4:d9:55:3f:11:90:ad:b3:9f:ae:23:80:ff:3b:29: 18:e4:d4:fe:38:8b:1c:0e:d9:42:9a:51:9b:14:3c:b4:a2:9a: 7d:db:4a:33 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQBqTeqA2gxArI196mQ5wGNCAJXQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1 MUJDMTdBMjAeFw0yNDA4MzExNjA2NTdaFw0yNTA4MzAxNjExNTdaMDMxMTAvBgNV BAMTKDlBRTkyRjg2QThENzJCMUE4NzUzN0IxMTJCRDU1MzE2QTQwMjUyOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6wa5CZP5sA02gs1YC2CCa/e1m Wlhu0eFBpoBA2GRdi7Jr4F+puTUD9Sf3XFgbj/VaAXaoj6+EQ58GJKGlabP+XA8A BWM1nXDxolszFZ6zI5C8gxw4REHooaFG+gEnrrqcdf4+dfju2h8SLQL7dxqokNiH A38+Fsd4cu8fNsPvZMeOhqAhHVbTXzqfdGn1yp777+ibND2QPqNVdLJLVuVJjCfE G4h+cJVr9LxrwKTuW7k7Mrn5lP92NKIXpB9csFIy1MWhj/kCUJ4GhxUQiYPkRzET vWRCG5cQRhuY+vC2Ll2f7PKtXczd7hWqsvaV2rOhGEtshI/dhkVuk1+LdS7JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmukvhqjXKxqHU3sRK9VTFqQCUpgwHwYDVR0j BBgwFoAUD9BE1hNIyI3c/8Tzwzv7xFG8F6IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjU0OGJhZC03ZmVkLTQxZmQtYjQyZS03ODAzNzJjNDUyNTUvMC8wRkQwNDRENjEz NDhDODhERENGRkM0RjNDMzNCRkJDNDUxQkMxN0EyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1MUJD MTdBMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMxMzEzMDJlMzczNjJlMzEzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbkyQMA0GCSqG SIb3DQEBCwUAA4IBAQBb64m6u4vygE1+A/X1UwD/Fwc1YEfd2s+xdVLofjndHjeA C7sXaf3ExDyI0FDD7J/6U0z7sl3gYf0lkj2Bgxd/mjiadV5skyaYTcfVRQF5fQ7q WjCe4m4Ue7O3Od8WpXv9YhXGbdEswPInyYuwYVaxVo27jAdS4uyR79hzCK3fFb7q 7DD/vc2fe3UeCyA+WUCSdkPoTYy7e7t5W6CItGyICg2JsdgtWQWiS9sI2ejdIaa9 hfFZjLTM5lyz35pzfEUE90pRHoqXUKFTnb9UKf3M+47tGbbNaXAd9aL02VU/EZCt s5+uI4D/OykY5NT+OIscDtlCmlGbFDy0opp920oz -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:50 2024 by rpki-client on console-ams.rpki-client.org